Bug 510251 (CVE-2009-2408)
Summary: | CVE-2009-2408 firefox/nss: doesn't handle NULL in Common Name properly | ||||||||
---|---|---|---|---|---|---|---|---|---|
Product: | [Other] Security Response | Reporter: | Mark J. Cox <mjc> | ||||||
Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> | ||||||
Status: | CLOSED ERRATA | QA Contact: | |||||||
Severity: | medium | Docs Contact: | |||||||
Priority: | low | ||||||||
Version: | unspecified | CC: | kreilly, psplicha, rrelyea, security-response-team, stransky, yoyzhang | ||||||
Target Milestone: | --- | Keywords: | Security | ||||||
Target Release: | --- | ||||||||
Hardware: | All | ||||||||
OS: | Linux | ||||||||
Whiteboard: | |||||||||
Fixed In Version: | Doc Type: | Bug Fix | |||||||
Doc Text: | Story Points: | --- | |||||||
Clone Of: | Environment: | ||||||||
Last Closed: | 2009-10-13 13:30:35 UTC | Type: | --- | ||||||
Regression: | --- | Mount Type: | --- | ||||||
Documentation: | --- | CRM: | |||||||
Verified Versions: | Category: | --- | |||||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||||
Cloudforms Team: | --- | Target Upstream Version: | |||||||
Embargoed: | |||||||||
Bug Depends On: | 230399, 514474, 514916, 565580, 565581, 565584, 565585, 582839 | ||||||||
Bug Blocks: | |||||||||
Attachments: |
|
Description
Mark J. Cox
2009-07-08 13:40:23 UTC
This issue is fixed in upstream NSS 3.12.3 by the following bzs: Improper character escaping and unescaping in alg1485.c & secname.c https://bugzilla.mozilla.org/show_bug.cgi?id=480509 Must escape DER DNS names when converting to zStrings https://bugzilla.mozilla.org/show_bug.cgi?id=484111 This was also found by Moxie and presented in two talks at Blackhat last night. Moxie was able to get a CA to sign a certificate containing a NULL in the CN name. Removing embargo. This issue has been addressed in following products: Red Hat Enterprise Linux 4 Via RHSA-2009:1184 https://rhn.redhat.com/errata/RHSA-2009-1184.html This issue has been addressed in following products: Red Hat Enterprise Linux 5 Via RHSA-2009:1186 https://rhn.redhat.com/errata/RHSA-2009-1186.html This issue has been addressed in following products: Red Hat Enterprise Linux 4.7 Z Stream Via RHSA-2009:1190 https://rhn.redhat.com/errata/RHSA-2009-1190.html Created attachment 355994 [details]
backported mozbz#480509
Created attachment 355997 [details]
backported mozbz#484111
This issue has been addressed in following products: Red Hat Enterprise Linux 5.2 Z Stream Via RHSA-2009:1207 https://rhn.redhat.com/errata/RHSA-2009-1207.html This issue has been addressed in following products: Red Hat Enterprise Linux 3 Via RHSA-2009:1432 https://rhn.redhat.com/errata/RHSA-2009-1432.html This was fixed in all affected NSS versions in Red Hat Enterprise Linux 3, 4 and 5 and all current Fedora versions (F10+). |